Trojan.Apmod
Trojan.Apmod is a dangerous backdoor Trojan infection that functions on the Apache Web server and host corrupt websites. Trojan.Apmod is responsible for propagating unwanted software programs and other forms of malware infections by using the Internet. Once corrupted by Trojan.Apmod, it can potentially attack web servers and host illegitimate contents on the servers. Trojan.Apmod requests for websites and injects a malicious iframe tag. Trojan.Apmod downloads and executes corrupt files. Trojan.Apmod can flood the affected computer with unlimited fake advertisements and annoying pop-up alerts.
File System Details
Trojan.Apmod may create the following file(s):
| # | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|
| 1. | %AllUsersProfile%\.exe | |
| 2. | %AllUsersProfile%\.dll | |
| 3. | %AllUsersProfile%\Application Data\.exe | |
| 4. | %AllUsersProfile%\Application Data\.dll | |
| 5. | %AllUsersProfile%\~ | |
| 6. | %UserProfile%\Desktop\Trojan.Apmod.lnk | |
| 7. | %AllUsersProfile%\Application Data\~ | |
| 8. | %UserProfile StartMenu\Programs\Trojan.Apmod\ | |
| 9. | %UserProfile%\Start Menu\Programs\Trojan.Apmod\Uninstall Trojan.Apmod.lnk | |
| 10. | %AllUsersProfile%\Application Data\~r | |
| 11. | %AllUsersProfile%\~r | |
| 12. | %UserProfile%\Start Menu\Programs\Trojan.Apmod\Trojan.Apmod.lnk |
Registry Details
Trojan.Apmod may create the following registry entry or registry entries:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "CertificateRevocation" = '0'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Associations "LowRiskFileTypes" = '/{hq:/s`s:/ogn:/uyu:/dyd:/c`u:/bnl:/ble:/sdf:/lrh:/iul:/iulm:/fhg:/clq:/kqf:/`wh:/lqf:/lqdf:/lnw:/lq2:/l2t:/v`w:/rbs:'
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download "CheckExeSignatures" = 'no'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced "ShowSuperHidden" = '0'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run ".exe"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "WarnonBadCertRecving" = '0'
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system "DisableTaskMgr" = '1'
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main "Use FormSuggest" = 'yes'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run ""
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\ActiveDesktop “NoChangingWallPaper” = '1'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System "DisableTaskMgr" = '1'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments "SaveZoneInformation" = '1'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced "Hidden" = '0'
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.